Compare Plans


Avaya ensures the security of our assets and of the data we handle on customers’ behalf by complying with laws, regulations, policies, and customer commitments. 

Structured for success.

Avaya’s Ethics, Integrity and Security (EIS) team is led by our Chief Compliance Officer and is strategically placed with our worldwide law team to ensure independent governance, Board of Directors oversight, and transparency to our stakeholders. EIS has teams for physical and information security, business continuity, industry certifications, third party risk management, and ethics and compliance.


Avaya security teams operate in two workstreams: the protection of people and assets and the protection of Avaya and customer data. Robust business continuity and crisis management plans maintain our employee safety and operations. The Information Security team ensures the protection and availability of Avaya’s information assets, which includes information entrusted to us by our customers. We understand that threats to our network and information come from many different vectors and are extremely fluid. We approach security by: 

  • Security operations and best practices 
  • Platform and network security 
  • Availability and continuity 
  • Incident response 
  • Continuous assessment and improvement 


ISO 9001 Logo

ISO 9001

ISO Logo

ISO 27001

HIPAA Compliance

HIPAA Compliance

PCI Compliance

PCI compliance

FedRAMP Compliance

FedRAMP compliance

Trusted Cloud Provider

Trusted Cloud Provider

Cyber Essentials Basic

Cyber Essentials Basic

Show More
Show Less

Data privacy

Privacy by design

Our cloud solutions go through stringent internal engineering processes to ensure they incorporate technical features to enable our clients to comply with the requirements of GDPR and other privacy laws around the world. 

Binding Corporate Rules

Avaya’s processor Binding Corporate Rules ensure that all our entities handling customer data do so following rigorous data handling processes of the highest standards approved by the EU regulatory authorities. 

EU and UK data transfers

Our contractual commitments to your personal data: Avaya will handle your data in accordance with the commitments we make in our Data Processing Agreement. Our Data Processing Agreement has been designed not just with GDPR in mind, but with a vast array of other privacy laws. 

Privacy factsheets

Our exports of EU and UK personal data rely on our Binding Corporate Rules and the International Data Transfer Agreement or Addendum for the UK together with our processes to carry out transfer impact assessments whenever such data is shared outside of the Avaya group. For more information, review our FAQs.

Loading page...
Error: There was a problem processing your request.